It appears that Slavko via Exim-users <[email protected]> said: >The docs says, that when dkim_sign_headers is not specified, **the >header names listed in RFC4871 will be used, ...
>Beside the fact, that RFC4871 is obsoleted by RFC6376 (which removed >whole that list), exim implements it wrongly, as the RFC4871 mentions >**SHOULD be included in the signature, if they are present in the >message** (only From is required to sign always), but exim signs them >(by default) all, despite if they are in message or not. OK, that sounds about as wrong as I feared. I'll tell the guy it's a bug in Exim and if he cares about his mail, he should adjust the configuration to sign a reasonable set of headers. R's, John -- ## subscription configuration (requires account): ## https://lists.exim.org/mailman3/postorius/lists/exim-users.lists.exim.org/ ## unsubscribe (doesn't require an account): ## [email protected] ## Exim details at http://www.exim.org/ ## Please use the Wiki with this list - http://wiki.exim.org/
